This article reflects on Tetragon's progress in 2025, highlighting key features like persistent enforcement, attribute resolution, and userspace hooks that enhance security observability. It also showcases community engagement through talks and user stories that emphasize Tetragon's role in runtime security.

DestroyList is an open-source tool that provides a curated list of phishing and scam domains, allowing users to block malicious sites effectively. It offers real-time risk scoring and various download formats for integration into firewalls and DNS resolvers. The service uses community reports and advanced detection methods to identify threats.

OWASP BLT is a platform that enables users to discover and report bugs across various software projects, including websites and apps. It encourages community contributions through a gamified system that rewards users for their testing efforts. The platform also incorporates AI tools for enhanced coding and testing efficiency.

OpenClaw is an open-source AI assistant platform that operates directly on your machine, integrating with popular chat apps like WhatsApp and Discord. This rebranded project emphasizes user control over data and infrastructure while introducing new features and enhanced security measures. The team is also expanding to manage growth and improve the platform.

The OpenSearch Software Foundation, launched in September 2024 as part of the Linux Foundation, aims to foster community collaboration in developing advanced search solutions utilizing AI and machine learning. The initiative focuses on creating innovative applications, enhancing observability, and ensuring security analytics in real-time.

The Semgrep MCP server has been integrated into the main Semgrep repository, leading to the deprecation of the standalone repo. This Model Context Protocol (MCP) server allows users to scan code for security vulnerabilities using Semgrep, a static analysis tool that supports numerous programming languages. Users can run the server via CLI or Docker, and it is recommended to engage with the community for feedback and support as the project is in active development.

RubyGems.org outlined its proactive security measures in response to recent incidents involving malicious gems aimed at stealing social media credentials. The organization employs a multi-layered approach for detecting and managing threats, including automated detection, risk scoring, and community collaboration, ensuring the Ruby ecosystem remains secure. They encourage community engagement and support for ongoing security efforts.